package com.qk.filter;

import com.qk.utils.CurrentUserHoler;
import com.qk.utils.JwtUtils;
import io.jsonwebtoken.Claims;
import jakarta.servlet.*;
import jakarta.servlet.annotation.WebFilter;
import jakarta.servlet.http.HttpServletRequest;
import jakarta.servlet.http.HttpServletResponse;
import lombok.extern.slf4j.Slf4j;

import java.io.IOException;
@Slf4j
@WebFilter(urlPatterns = "/*")
public class TokenFilter implements Filter {
    public void doFilter(ServletRequest servletRequest, ServletResponse servletResponse, FilterChain filterChain) throws IOException, ServletException {
        HttpServletRequest request = (HttpServletRequest) servletRequest;
        HttpServletResponse response = (HttpServletResponse) servletResponse;
        // 1、获取请求路径
        String uri=request.getRequestURI();
        //2、判定是否是登录请求，如果是，放行
        if(uri.contains("/login")){
            log.info("登录请求，放行");
            filterChain.doFilter(request,response);
            return;
        }
        //3、从请求头中获取token
        String jwt = request.getHeader("token");
        //4、判断 token是否存在，如果不存在，响应401状态码
        if(jwt==null || jwt.isEmpty()){
            log.info("请求头token不存在");
            response.setStatus(401);
            return;
        }
        //5、解析令牌，如果解析令牌报错，响应401状态码
        try {
            //解析token
            Claims claims =JwtUtils.parseToken(jwt);
            //获取用户id，存入threadlocal
           Integer userId = claims.get("id",Integer.class);
           CurrentUserHoler.setCurrentUser(userId);

        } catch (Exception e) {
            log.info("令牌解析失败");
            response.setStatus(401);
            return;
        }
        //6、放行
        log.info("令牌解析成功");
        filterChain.doFilter(request,response);
        //7、用户删除
        CurrentUserHoler.removeCurrentUser();
    }
}
